Solved

AIX Encryption using EFS

Posted on 2013-06-20
1
1,366 Views
Last Modified: 2013-06-26
I was testing EFS on AIX 7.1. it was working when I decided to start over.
I deleted the filesystem and recreated the filesystem with the same name.
Now I get the following when entering root's EFS password:
efskeymgr -o ksh
root's EFS password:
Encryption framework returned an error: libefs bad parameter

I can change the password but still get the same error message.

Does anyone know how to fix this?

Also, once EFS is enabled with efsenable -a can it be disabled?

oslevel -s
7100-02-02-1316

lslpp -L | grep openssh
  openssh.base.client     6.0.0.6102    C     F    Open Secure Shell Commands
  openssh.base.server     6.0.0.6102    C     F    Open Secure Shell Server
  openssh.license         6.0.0.6102    C     F    Open Secure Shell License
  openssh.man.en_US       6.0.0.6102    C     F    Open Secure Shell
  openssh.msg.en_US       6.0.0.6102    C     F    Open Secure Shell Messages -

TIA,
Dan Kaib
0
Comment
Question by:scodhk
1 Comment
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
ID: 39265238
Is your private key still valid?

efskeymgr -v

Maybe it could help regenerating the key

efskeymgr -R <algo>

e.g.

efskeymgr -R RSA_1024

And no, you can't revert the actions taken by efsenable (create admin/user/group keystores, create /var/efs, update /etc/security/user and /etc/security/group, update Config_Rules).

wmp
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now